14 DAY TRIAL // Customers running Internet Explorer 9, as well as older versions of IE, need to deploy the Cumulative Security Update for Internet Explorer (2586448) as soon as possible.
Microsoft Security Bulletin MS11-081, rated Critical, was released as a part of the company’s Patch Tuesday for October 2011.
The patch package contains fixes for no less than eight security vulnerabilities affecting various versions of Internet Explorer. According to the Redmond company, all of the security holes were privately reported.
KB2586448 is already being distributed automatically via Windows Updates to customers worldwide. I also included a number of links to the download pages for standalone versions of the update at the bottom of this article.
Alternatively, customers can simply head over to the Microsoft Download Center in order to access all KB2586448 updates manually.
According to information supplied by Microsoft, customers running Internet Explorer 9 on top of Windows 7 Service Pack 1 (SP1) need to deploy KB2586448 in order to patch no less than five Critical vulnerabilities affecting this version of the browser.
Jscript9.dll Remote Code Execution Vulnerability - CVE-2011-1998, Body Element Remote Code Execution Vulnerability - CVE-2011-2000, Virtual Function Table Corruption Remote Code Execution Vulnerability - CVE-2011-2001, Scroll Event Remote Code Execution Vulnerability - CVE-2011-1993 and OLEAuto32.dll Remote Code Execution Vulnerability - CVE-2011-1995 are the security flaws which IE9 users need to patch as soon as possible.
“The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user,” Microsoft informs.
“This security update is rated Critical for Internet Explorer on Windows clients and Moderate for Internet Explorer on Windows servers.”
Cumulative Security Update for Internet Explorer 9 in Windows 7 (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows Vista (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows Server 2008 (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows Vista x64 Edition (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows 7 x64 Edition (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows Server 2008 x64 Edition (KB2586448)
Cumulative Security Update for Internet Explorer 9 in Windows Server 2008 R2 x64 Edition (KB2586448)